Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DB99/BC659BC631B411EEB551F211C4F9AE02/6B0ED1A8A87311EEAB8BE83BC4F9AE02.roa
File: 6B0ED1A8A87311EEAB8BE83BC4F9AE02.roa (raw, json)
Hash identifier: EoWyMnwC/f6nCOIDXl0yLUTAVd4wjpgosm0BOMuz4QY=
Subject key identifier: 37:2D:11:62:68:71:82:41:0D:01:35:C8:43:43:15:14:E7:40:CE:E0
Certificate issuer: /CN=A912DB99/serialNumber=E98612EEEA4AE70D1FB5B6524B969D4742DCE810
Certificate serial: 5A
Authority key identifier: E9:86:12:EE:EA:4A:E7:0D:1F:B5:B6:52:4B:96:9D:47:42:DC:E8:10
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6YYS7upK5w0ftbZSS5adR0Lc6BA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912DB99/BC659BC631B411EEB551F211C4F9AE02/6B0ED1A8A87311EEAB8BE83BC4F9AE02.roa
Signing time: Mon 01 Jan 2024 07:00:17 +0000
ROA not before: Mon 01 Jan 2024 07:00:16 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 136895
IP address blocks: 103.246.64.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90 (0x5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912DB99
Validity
Not Before: Jan 1 07:00:16 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65926300-590d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6f:44:2c:9c:32:0d:15:a6:01:49:4e:19:4f:
38:10:b2:3b:92:3d:5c:e9:e0:8c:29:db:ed:8b:d7:
d9:f1:06:07:fa:1b:02:ba:c7:32:4f:e7:2a:c3:29:
d7:73:34:9d:7d:87:b9:ff:73:15:74:c4:62:41:16:
01:95:a7:b4:17:53:08:b4:71:7a:cf:4c:05:a9:6f:
87:6b:28:8b:54:0a:05:e9:a7:4a:ae:cd:d4:ec:20:
b7:2d:99:73:e2:6b:0c:8c:cc:56:b6:7c:14:5d:00:
cc:d6:fc:c2:12:05:2e:31:d4:e8:4a:37:27:a9:06:
ee:e6:9c:f6:a3:5f:85:84:76:2b:96:02:75:f4:97:
b3:41:8d:45:20:56:f8:60:2f:b8:6b:53:ef:9d:e6:
f7:2f:5c:0e:b1:01:0c:f6:10:e3:0c:5a:31:f2:8b:
99:67:24:93:d4:ed:91:90:ba:5b:26:59:0a:dd:1e:
e3:1f:32:22:8f:34:41:59:b2:d0:74:bb:e1:45:db:
56:2e:bf:8a:cf:82:e8:b9:eb:84:5c:e7:51:6e:74:
7f:b6:4f:09:cb:9f:25:dd:79:4d:2f:c9:b6:fa:95:
8f:22:3e:f6:d4:80:13:67:0d:01:2c:4a:93:75:79:
f3:36:17:37:81:30:a6:09:d9:f0:e5:ae:0a:31:d4:
8e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2D:11:62:68:71:82:41:0D:01:35:C8:43:43:15:14:E7:40:CE:E0
X509v3 Authority Key Identifier:
keyid:E9:86:12:EE:EA:4A:E7:0D:1F:B5:B6:52:4B:96:9D:47:42:DC:E8:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912DB99/BC659BC631B411EEB551F211C4F9AE02/6YYS7upK5w0ftbZSS5adR0Lc6BA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6YYS7upK5w0ftbZSS5adR0Lc6BA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DB99/BC659BC631B411EEB551F211C4F9AE02/6B0ED1A8A87311EEAB8BE83BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.246.64.0/23
Signature Algorithm: sha256WithRSAEncryption
59:80:05:90:c5:ce:32:e8:66:27:c4:6e:cb:76:47:36:e9:b1:
09:7b:b4:a1:b5:39:3c:bd:e6:ae:b4:94:bb:f6:ea:4c:b7:e5:
c3:78:4c:74:3c:c8:73:e9:19:c2:79:51:0b:30:18:8c:ea:6d:
a6:be:11:cb:41:88:26:25:b0:e8:c1:28:af:cd:e3:6b:ed:87:
26:f7:41:22:20:1a:55:83:fe:62:1b:59:0e:f6:76:d6:8b:0d:
a6:5d:64:0d:cf:7f:1f:4d:9b:1c:c6:a9:b7:ae:0b:ab:35:67:
17:de:2d:f7:1d:06:75:67:dd:75:6c:77:bf:b3:44:e7:44:e2:
a4:82:00:c7:30:3c:e7:34:97:5d:7c:30:c3:87:bb:16:5c:ac:
b1:7a:b2:ef:b2:dc:44:06:38:22:89:93:ac:e1:16:fb:6b:db:
bd:20:ad:3a:31:e9:58:7d:3f:61:52:72:14:e6:38:32:1e:44:
16:36:f4:78:ec:89:76:50:df:58:55:60:8f:d2:be:b9:a2:4e:
8c:74:ad:e4:17:ac:a5:20:1b:d0:cd:5f:58:3a:44:94:32:d4:
34:39:1c:71:1a:0b:8c:b9:2e:81:5e:84:9e:ce:20:62:29:4b:
26:87:44:c7:10:66:55:9d:9e:e2:46:db:13:24:48:37:36:17:
85:e1:42:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:02 2025 by rpki-client